Vulnerability Details CVE-2016-0379
IBM WebSphere MQ 7.5 before 7.5.0.7 and 8.0 before 8.0.0.5 mishandles protocol flows, which allows remote authenticated users to cause a denial of service (channel outage) by leveraging queue-manager rights.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 54.5%
CVSS Severity
CVSS v3 Score 3.1
CVSS v2 Score 3.5
References
Products affected by CVE-2016-0379
-
cpe:2.3:a:ibm:websphere_mq:7.5
-
cpe:2.3:a:ibm:websphere_mq:7.5.0.1
-
cpe:2.3:a:ibm:websphere_mq:7.5.0.2
-
cpe:2.3:a:ibm:websphere_mq:7.5.0.3
-
cpe:2.3:a:ibm:websphere_mq:7.5.0.4
-
cpe:2.3:a:ibm:websphere_mq:7.5.0.5
-
cpe:2.3:a:ibm:websphere_mq:7.5.0.6
-
cpe:2.3:a:ibm:websphere_mq:8.0
-
cpe:2.3:a:ibm:websphere_mq:8.0.0.1
-
cpe:2.3:a:ibm:websphere_mq:8.0.0.2
-
cpe:2.3:a:ibm:websphere_mq:8.0.0.3
-
cpe:2.3:a:ibm:websphere_mq:8.0.0.4